Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32332d3233203d3e20313432333131.roa
File: 3130332e3136382e3135302e302f32332d3233203d3e20313432333131.roa (raw, json)
Hash identifier: YnDiGUep/1nSE94o/4LWwQANrUw0IR0aM/NT1Nfv7KE=
Subject key identifier: CD:74:21:C4:DE:C7:4A:0B:DF:08:C1:98:45:66:91:B4:DE:B8:A7:EF
Certificate issuer: /CN=7195906BF48238F96B0510D75000910A519133F7
Certificate serial: 2E4B1B87ED44BA8E4306946215FE38A89609A26E
Authority key identifier: 71:95:90:6B:F4:82:38:F9:6B:05:10:D7:50:00:91:0A:51:91:33:F7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7195906BF48238F96B0510D75000910A519133F7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32332d3233203d3e20313432333131.roa
Signing time: Tue 31 Dec 2024 07:02:16 +0000
ROA not before: Tue 31 Dec 2024 06:57:16 +0000
ROA not after: Tue 30 Dec 2025 07:02:16 +0000
asID: 142311
IP address blocks: 103.168.150.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:4b:1b:87:ed:44:ba:8e:43:06:94:62:15:fe:38:a8:96:09:a2:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7195906BF48238F96B0510D75000910A519133F7
Validity
Not Before: Dec 31 06:57:16 2024 GMT
Not After : Dec 30 07:02:16 2025 GMT
Subject: CN=CD7421C4DEC74A0BDF08C198456691B4DEB8A7EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:75:34:ba:cb:ab:0a:8d:2d:91:81:2d:07:19:
69:a9:a6:b5:16:07:c9:d6:6f:b6:0a:fa:f2:b3:74:
48:98:07:c4:94:a5:4c:59:ee:ca:ba:3c:46:05:35:
4e:19:a1:68:64:41:b7:af:d1:2a:1c:72:a2:0b:73:
33:87:3f:a4:ce:d3:14:73:22:58:b9:f8:1d:6e:93:
f3:74:e2:bc:69:0e:1b:18:c5:69:3b:8e:30:eb:62:
29:c0:40:aa:d9:1e:ee:97:14:a3:16:0f:07:65:99:
22:71:33:7d:27:ef:ad:c0:4f:02:9d:4c:d8:8f:af:
1f:40:b1:7a:8f:61:f8:13:87:dc:4d:89:9e:92:3a:
24:39:da:6a:fb:c0:17:85:fd:13:98:8c:12:bc:86:
f8:70:c6:f0:4b:02:d5:89:be:79:9a:de:f0:43:00:
1c:fb:11:66:fe:5e:8a:20:9f:7a:d9:25:75:28:e6:
c6:e5:bf:62:c4:bf:90:ab:e2:ee:f7:7a:f8:5d:c5:
d0:62:fd:4a:e5:67:95:ad:68:a6:4b:cd:2f:cb:2b:
49:7c:af:c9:87:50:ef:96:46:52:ae:f2:4a:7a:1b:
12:d5:a5:03:ab:66:cd:ba:0a:67:91:c9:5f:44:2e:
20:4b:af:34:f1:d6:de:c1:de:6a:d3:38:10:38:30:
a5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:74:21:C4:DE:C7:4A:0B:DF:08:C1:98:45:66:91:B4:DE:B8:A7:EF
X509v3 Authority Key Identifier:
keyid:71:95:90:6B:F4:82:38:F9:6B:05:10:D7:50:00:91:0A:51:91:33:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/7195906BF48238F96B0510D75000910A519133F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7195906BF48238F96B0510D75000910A519133F7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135302e302f32332d3233203d3e20313432333131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.168.150.0/23
Signature Algorithm: sha256WithRSAEncryption
84:55:0b:a7:37:27:e6:86:4d:57:c6:8f:09:d6:c5:6c:31:9d:
c8:35:7a:e4:fb:d2:3c:dc:eb:bb:7b:1e:b4:6c:fb:21:2c:83:
2a:ff:29:da:6c:c2:95:59:74:d1:a0:95:14:b0:1e:d2:8c:33:
f4:3a:d1:da:28:e4:cc:a8:97:7f:07:f2:9e:51:8f:db:33:22:
cb:30:a5:c1:09:43:8a:a3:f1:d1:f5:c0:24:36:18:5d:30:8c:
80:76:c5:38:5e:ce:48:d3:b1:e5:70:93:0a:eb:7a:96:0c:38:
93:a1:9f:74:fa:3e:7b:3e:c0:ab:b2:d7:9e:b2:1e:ea:45:72:
2c:8c:ea:cf:20:e9:34:b1:20:23:c8:7e:f3:72:95:14:2b:11:
91:8c:65:5e:5b:8f:e4:6a:4e:52:d3:24:c0:fa:64:79:64:2c:
33:a0:ca:7b:29:2a:de:bf:be:ea:b4:eb:15:e8:12:27:20:e4:
8b:f4:dc:b7:9f:7c:46:03:bf:bb:27:4a:b7:06:54:a6:22:4c:
43:4b:d1:01:89:30:dd:c4:c0:52:e6:d3:6f:c3:68:00:ba:4e:
61:d9:f5:5c:e6:68:89:52:d0:ce:f1:41:53:08:f5:16:75:29:
ef:39:96:78:88:7f:41:cb:1f:ce:90:58:39:9d:e0:da:cd:62:
b1:05:82:09
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIULksbh+1Euo5DBpRiFf44qJYJom4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzE5NTkwNkJGNDgyMzhGOTZCMDUxMEQ3NTAwMDkxMEE1
MTkxMzNGNzAeFw0yNDEyMzEwNjU3MTZaFw0yNTEyMzAwNzAyMTZaMDMxMTAvBgNV
BAMTKENENzQyMUM0REVDNzRBMEJERjA4QzE5ODQ1NjY5MUI0REVCOEE3RUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsdTS6y6sKjS2RgS0HGWmpprUW
B8nWb7YK+vKzdEiYB8SUpUxZ7sq6PEYFNU4ZoWhkQbev0SoccqILczOHP6TO0xRz
Ili5+B1uk/N04rxpDhsYxWk7jjDrYinAQKrZHu6XFKMWDwdlmSJxM30n763ATwKd
TNiPrx9AsXqPYfgTh9xNiZ6SOiQ52mr7wBeF/ROYjBK8hvhwxvBLAtWJvnma3vBD
ABz7EWb+Xoogn3rZJXUo5sblv2LEv5Cr4u73evhdxdBi/UrlZ5WtaKZLzS/LK0l8
r8mHUO+WRlKu8kp6GxLVpQOrZs26CmeRyV9ELiBLrzTx1t7B3mrTOBA4MKX9AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUzXQhxN7HSgvfCMGYRWaRtN64p+8wHwYDVR0j
BBgwFoAUcZWQa/SCOPlrBRDXUACRClGRM/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
YzMyZWVlMS0xMGY3LTQ1N2QtYThjNS01ZjdmNzQxYTYzZGEvMC83MTk1OTA2QkY0
ODIzOEY5NkIwNTEwRDc1MDAwOTEwQTUxOTEzM0Y3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzE5NTkwNkJGNDgyMzhGOTZCMDUxMEQ3NTAwMDkxMEE1MTkx
MzNGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjMzJlZWUxLTEwZjctNDU3ZC1h
OGM1LTVmN2Y3NDFhNjNkYS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM1MzAyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzMxMzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqJYwDQYJ
KoZIhvcNAQELBQADggEBAIRVC6c3J+aGTVfGjwnWxWwxncg1euT70jzc67t7HrRs
+yEsgyr/KdpswpVZdNGglRSwHtKMM/Q60doo5Myol38H8p5Rj9szIsswpcEJQ4qj
8dH1wCQ2GF0wjIB2xThezkjTseVwkwrrepYMOJOhn3T6Pns+wKuy156yHupFciyM
6s8g6TSxICPIfvNylRQrEZGMZV5bj+RqTlLTJMD6ZHlkLDOgynspKt6/vuq06xXo
Eicg5Iv03LeffEYDv7snSrcGVKYiTENL0QGJMN3EwFLm02/DaAC6TmHZ9VzmaIlS
0M7xQVMI9RZ1Ke85lniIf0HLH86QWDmd4NrNYrEFggk=
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:46:47 2025 by rpki-client